189.213.153.145

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
189.213.153.59	attack	Automatic report - Port Scan Attack	2020-04-29 12:57:22
189.213.153.29	attack	Unauthorized connection attempt detected from IP address 189.213.153.29 to port 23 [J]	2020-03-02 17:58:06
189.213.153.18	attackspam	unauthorized connection attempt	2020-02-07 17:56:38
189.213.153.233	attackspam	Unauthorized connection attempt detected from IP address 189.213.153.233 to port 23 [J]	2020-01-27 00:38:13
189.213.153.125	attackbotsspam	Unauthorized connection attempt detected from IP address 189.213.153.125 to port 23	2019-12-29 08:31:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.213.153.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62072
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.213.153.145.		IN	A

;; AUTHORITY SECTION:
.			461	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 14:18:20 CST 2022
;; MSG SIZE  rcvd: 108

Host info

145.153.213.189.in-addr.arpa domain name pointer 189-213-153-145.static.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.153.213.189.in-addr.arpa	name = 189-213-153-145.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.133.66.113	attackbotsspam	Jun 29 01:20:56 server postfix/smtpd[28209]: NOQUEUE: reject: RCPT from dolls.tamnhapho.com[5.133.66.113]: 554 5.7.1 Service unavailable; Client host [5.133.66.113] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2019-06-29 10:04:58
139.59.82.78	attack	Jun 29 03:48:01 core01 sshd\[28475\]: Invalid user debian from 139.59.82.78 port 42050 Jun 29 03:48:01 core01 sshd\[28475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.82.78 ...	2019-06-29 10:00:24
114.26.164.146	attackbotsspam	Jun 29 01:19:34 reporting1 sshd[30381]: Invalid user admin from 114.26.164.146 Jun 29 01:19:34 reporting1 sshd[30381]: Failed password for invalid user admin from 114.26.164.146 port 59086 ssh2 Jun 29 01:19:35 reporting1 sshd[30381]: Failed password for invalid user admin from 114.26.164.146 port 59086 ssh2 Jun 29 01:19:36 reporting1 sshd[30381]: Failed password for invalid user admin from 114.26.164.146 port 59086 ssh2 Jun 29 01:19:37 reporting1 sshd[30381]: Failed password for invalid user admin from 114.26.164.146 port 59086 ssh2 Jun 29 01:19:38 reporting1 sshd[30381]: Failed password for invalid user admin from 114.26.164.146 port 59086 ssh2 Jun 29 01:19:39 reporting1 sshd[30381]: Failed password for invalid user admin from 114.26.164.146 port 59086 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.26.164.146	2019-06-29 10:02:20
159.89.139.228	attack	Jun 29 01:02:12 mail sshd[7837]: Invalid user vwalker from 159.89.139.228 Jun 29 01:02:12 mail sshd[7837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.139.228 Jun 29 01:02:12 mail sshd[7837]: Invalid user vwalker from 159.89.139.228 Jun 29 01:02:14 mail sshd[7837]: Failed password for invalid user vwalker from 159.89.139.228 port 55394 ssh2 Jun 29 01:20:09 mail sshd[10064]: Invalid user sales1 from 159.89.139.228 ...	2019-06-29 10:31:57
139.59.70.180	attackbots	SSH-bruteforce attempts	2019-06-29 10:24:05
45.119.208.187	attackbots	45.119.208.187 - - [29/Jun/2019:01:20:41 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.119.208.187 - - [29/Jun/2019:01:20:42 +0200] "POST /wp-login.php HTTP/1.1" 200 1524 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.119.208.187 - - [29/Jun/2019:01:20:42 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.119.208.187 - - [29/Jun/2019:01:20:43 +0200] "POST /wp-login.php HTTP/1.1" 200 1529 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.119.208.187 - - [29/Jun/2019:01:20:43 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.119.208.187 - - [29/Jun/2019:01:20:44 +0200] "POST /wp-login.php HTTP/1.1" 200 1525 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-06-29 10:11:33
45.125.65.84	attackspam	2019-06-29T02:38:49.780775ns1.unifynetsol.net postfix/smtpd\[20186\]: warning: unknown\[45.125.65.84\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T03:44:21.154019ns1.unifynetsol.net postfix/smtpd\[25484\]: warning: unknown\[45.125.65.84\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T04:49:31.157189ns1.unifynetsol.net postfix/smtpd\[4450\]: warning: unknown\[45.125.65.84\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T05:54:29.856358ns1.unifynetsol.net postfix/smtpd\[13489\]: warning: unknown\[45.125.65.84\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T06:59:48.823065ns1.unifynetsol.net postfix/smtpd\[27105\]: warning: unknown\[45.125.65.84\]: SASL LOGIN authentication failed: authentication failure	2019-06-29 10:19:26
82.196.123.86	attack	DATE:2019-06-29 01:21:39, IP:82.196.123.86, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-06-29 10:03:32
95.152.63.246	attack	[portscan] Port scan	2019-06-29 10:15:19
137.74.158.99	attack	Site Lockout Notification Host/User Lockout in Effect Until Reason User: admin 2019-06-29 09:15:40 user tried to login as "admin." Host: 137.74.158.99 2019-06-29 09:15:40 user tried to login as "admin."	2019-06-29 10:05:33
185.36.81.61	attack	2019-06-29T02:41:54.882687ns1.unifynetsol.net postfix/smtpd\[18680\]: warning: unknown\[185.36.81.61\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T03:44:20.137653ns1.unifynetsol.net postfix/smtpd\[26981\]: warning: unknown\[185.36.81.61\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T04:46:45.528775ns1.unifynetsol.net postfix/smtpd\[4450\]: warning: unknown\[185.36.81.61\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T05:49:05.142699ns1.unifynetsol.net postfix/smtpd\[16424\]: warning: unknown\[185.36.81.61\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T06:51:15.261544ns1.unifynetsol.net postfix/smtpd\[21093\]: warning: unknown\[185.36.81.61\]: SASL LOGIN authentication failed: authentication failure	2019-06-29 10:11:53
37.1.216.49	attackbots	firewall-block, port(s): 445/tcp	2019-06-29 10:38:29
1.32.250.82	attackspam	Unauthorised access (Jun 29) SRC=1.32.250.82 LEN=40 TTL=242 ID=24681 TCP DPT=445 WINDOW=1024 SYN	2019-06-29 10:40:31
51.68.220.136	attackbots	Jun 29 01:21:41 rpi sshd\[2201\]: Invalid user sshopenvpn from 51.68.220.136 port 43668 Jun 29 01:21:41 rpi sshd\[2201\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.220.136 Jun 29 01:21:43 rpi sshd\[2201\]: Failed password for invalid user sshopenvpn from 51.68.220.136 port 43668 ssh2	2019-06-29 10:04:28
106.12.93.12	attack	$f2bV_matches	2019-06-29 10:36:04

Recently Reported IPs

27.2.241.206	73.42.251.102	114.119.136.44	187.220.67.163
76.127.167.70	172.254.48.45	114.237.57.219	36.99.62.66
183.194.68.18	39.70.178.255	103.247.216.162	200.77.198.49
117.201.195.234	223.157.107.110	117.50.106.23	211.115.228.200
46.209.196.146	103.40.202.119	180.182.245.90	106.53.91.250